Home > Commerce Insights Blog CDE

Commerce Insights Blog

Subscribe
PCI 2010 and Beyond: Ecommerce Security News
By JVM
9/9/2009 11:42:00 AM  
For many Ecommerce merchants processing orders and maintaining a website is an immense time-consuming step to growing a business. Grappling with PCI compliance and delving deeper into its origins, existence and proliferation are another daunting task to say the least.

Recently the NRF or National Retail Federation issued a merchant survey investigating PCI compliance and small online retailers. Out the polled group, 19% of non-compliant merchants said they had little to no understanding of this payment security process that is becoming increasingly imperative today in Ecommerce. Another 26% stated they lacked “the financial or technical resources to meet the standard, which covers a dozen broad areas from physical and network security to protecting” the CDE or cardholder data environment and maintaining commensurately structured security policies. Interestingly however, 86% of those polled claimed to feel somewhat familiar with PCI and its Ecommerce requirements.

A burgeoning problem for many merchants is that PCI standards evolve as do online threats and the emergence of security standards for making online transactions. New requirements are forced upon retailers in an effort to better protect cardholder spending money online. Analogously, PCI is implementing regulatory changes that will also affect payment processors and software providers. In summer 2010, new changes will occur that will dramatically affect both small online merchants and enterprise-size larger retailers alike.

-Pending PCI reqs.: any payment software handling cardholder data must comply with the PCI subset, Payment Application Data Security Standard…
-Pending PCI reqs.2: imposed by MasterCard, all merchants accepting credit cards online and in particular, those larger companies (level II merchants) must use 3rd party auditors to assess their PCI compliance

What does this mean? For starters, smaller merchants will be taking on increased spending in order to remain compliant. Further, larger merchants will have to be assessed by outside parties and done so in a more stringent manner than previous iterations of PCI compliance mandated.

So how can merchants, small or large, reduce the heightened cost of Ecommerce and PCI compliance? Internet Retailer and PCI KnowledgeBase advise not to store cardholder information if at all possible. Currently, under the PCI mandates, only “retailer systems, networks, servers, databases and software-that hold cardholder data fall under PCI.” Maintaining a strict and structured distance from the CDE will encourage PCI audit exclusion for Ecommerce merchants, small or large.


***Chart created from Internet Retailer, “Don’t Look Now.” Don Davis, Sept. 2009, p. 21***



PCI Level
Annual Transaction Volume
IR's no. of Merchants
Compliance Cost

1
6 million cc
362
$450,000-4,400,000

2
1-6 million cc
702
$77,500-470,000

3
20,000-1 million cc/Ecommerce payment
2634
$19,250-72,000

4
under 20,000 Ecommerce; under 1 million total
6 million
under $5000

Rates of Compliance:
1-93%
2-88%
3-57%
4-NA

ShopVisible is an Ecommerce solution based in Atlanta, GA.

Currently rated 0 by 0 people

Tags: ShopVisible, PCI compliance, Ecommerce solution, Ecommerce security, CDE, Internet Retailer, Atlanta SEO
Categories: SEO, RSS, User Generated Content, Commerce Insights Blog
Bookmark and Share
Include comments
Archive
2014
 August (5)
 July (3)
 June (4)
 May (2)
 April (4)
 March (5)
 February (1)
 January (8)
 
2013
 December (13)
 November (12)
 October (3)
 September (2)
 August (3)
 July (6)
 June (3)
 May (2)
 April (1)
 March (11)
 February (3)
 January (5)
 
 
Recent Posts
Direct Marketing News: [Infographic] B2Bs and B2Cs Are Breaking Bad eCom Habits
  Comments: 0
  Rating: 0 / 0
ShopVisible Expands Omnichannel User Experience
  Comments: 0
  Rating: 0 / 0
MultiChannel Merchant: 38% of all eCommerce Site Visits Came From Mobile
  Comments: 0
  Rating: 0 / 0
Retail Online Integration: Site Improvement Tips to Increase Conversions
  Comments: 0
  Rating: 0 / 0
ShopVisible Releases Mid-year Influence & Impact Report
  Comments: 0
  Rating: 0 / 0
Website Magazine: Reducing Cart Abandonment by Building Trust
  Comments: 0
  Rating: 0 / 0
Internet Retailer: Retail Chain Offers B2B Sales on its First eCommerce Site
  Comments: 0
  Rating: 0 / 0
ATWOODS Ranch and Home Stores Launches eCommerce Site, Powered by ShopVisible
  Comments: 0
  Rating: 0 / 0
APICS Magazine: Gearing Up for Omnichannel Commerce
  Comments: 0
  Rating: 0 / 0
Internet Retailer: Customer Reviews Pump Up Online Conversion Rates for 3M
  Comments: 0
  Rating: 0 / 0
 
Authors
Allison Howen (1)
BC (2)
Bharat C (2)
Clint Engel -- Furniture Today (1)
DannieB (32)
e-commerce info (1)
E-Commerce Information (1)
Emma G (1)
Glenn Taylor (1)
Jessica Lee (1)
jvm (19)
Karen Marchione (5)
Kendrick (1)
Kendrick Woolford (2)
Lauren Smith (40)
Marketing (118)
marketing@shopvisible.com (3)
Media Coverage (13)
News (2)
Nithya (1)
PAN Communications (1)
Press Releases (10)
Sean Cook (11)
SEO Information (1)
ShopVisible Marketing (13)
Stacy Shade (7)
The Frog (4)
Webster J Frogg (10)
Will Devlin (11)
 
Back to top
 
Close

Contact Us

Tell us a little bit about what you are interested in so we can better serve you

Do you have an RFP you would like us to consider?

Please complete the contact form and indicate that you have an RFP in the message field. When we contact you, we’ll request a copy and respond with a customized solution to meet your needs.

You can get our RFP form here.

Would you like to speak to one of our platform consultants?

Please indicate that you would like to set up a call with one of our team members in the message field of the contact form. We’ll set up a time that’s convenient for you to show you the inner workings of the ShopVisible platform, and answer any technical questions you might have.